Cybersecurity Articles

355/68 Monday, September 22, 2025 Collins Aerospace, a U.S.-based aviation technology company under RTX (formerly Raytheon Technologies), has suffered a cyberattack that disrupted the check-in and boarding systems at several major European airports, including London Heathrow, Brussels, and Berlin. The incident caused widespread delays and cancellations, leaving thousands of passengers facing long queues and hours […]

354/68 Monday, September 22, 2025 LastPass has issued a warning to its users about a malicious campaign in which cybercriminals are creating fake repositories on GitHub to distribute malware disguised as popular software. The attacks specifically target macOS users, tricking them into installing a malware strain called Atomic Infostealer, which is designed to steal sensitive […]

353/68 Friday, September 19, 2025 SonicWall has issued an advisory urging customers to reset their passwords and authentication tokens after discovering that firewall configuration backup files for some MySonicWall accounts were accessed without authorization. The incident raises concerns that attackers could exploit sensitive information, such as passwords, API keys, and tokens, to compromise firewall systems. […]

352/68 Friday, September 19, 2025 Microsoft and Cloudflare announced the successful takedown of the RaccoonO365 Phishing-as-a-Service (PhaaS) platform, which had been used to steal thousands of Microsoft 365 accounts. Microsoft tracked this threat under the name Storm-2246. According to Microsoft, its Digital Crimes Unit (DCU) filed a legal complaint with the Southern District of New […]

351/68 Friday, September 19, 2025 Microsoft has issued another reminder that Office 2016 and Office 2019 will officially reach end of support on October 14, 2025. This means the products will no longer receive security updates, bug fixes, or technical assistance from the company. Related programs such as Visio 2016/2019 and Project 2016/2019 will also […]

350/68 Thursday, September 18, 2025 Google has removed 224 malicious Android applications from the Play Store after researchers from HUMAN Satori Threat Intelligence discovered that they were being used in a massive ad fraud operation known as “SlopAds”, which generated over 2.3 billion fake ad requests per day. These apps had already been downloaded more […]

349/68 Thursday, September 18, 2025 Google has confirmed that malicious actors created a fake account to access its Law Enforcement Request System (LERS), an online portal used by government agencies and law enforcement officials to submit and track user data requests. The company stated that the fraudulent account was immediately disabled and emphasized that no […]

348/68 Thursday, September 18, 2025 Cybersecurity researchers from ReversingLabs have disclosed a newly discovered worm called “Shai-hulud”, which is rapidly spreading across open-source software, particularly through NPM packages. The malware leverages self-replication mechanisms, enabling it to spread quickly across hundreds of projects while stealing sensitive information such as secrets, tokens, and login credentials-all with minimal […]

347/68 Wednesday, September 17, 2025 Kering, the parent company of luxury brands Gucci, Balenciaga, and Alexander McQueen, has confirmed a major data breach that exposed the personal information of millions of customers worldwide. The leaked data includes names, email addresses, phone numbers, home addresses, and luxury store purchase details. However, the company stated that no […]

346/68 Wednesday, September 17, 2025 Cybersecurity researchers from IBM X-Force have revealed that Mustang Panda, a China-linked state-sponsored threat group, is leveraging several new malware variants in its campaigns. Most notably, the group has introduced a new USB worm called SnakeDisk, designed to propagate infections and deliver the Yokai backdoor, enabling remote control of compromised […]